$ rpki-client -vvf rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa File: FD1CA67AAD5511EDBA936539C4F9AE02.roa (raw, json) Hash identifier: xNrMx2ykeoPHlp4OwjxlD2woswWyefyqLirhxUQ7v60= Subject key identifier: 1F:E6:58:C3:53:8E:37:B3:5C:C1:20:9C:67:09:37:CA:F4:CF:83:E4 Certificate issuer: /CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Certificate serial: 0BFD Authority key identifier: 8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa Signing time: Thu 14 Nov 2024 18:37:19 +0000 ROA not before: Thu 14 Nov 2024 18:37:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138336 IP address blocks: 103.130.112.0/23 maxlen: 23 103.130.112.0/24 maxlen: 24 103.130.113.0/24 maxlen: 24 2403:b840::/32 maxlen: 32 2403:b840:1::/48 maxlen: 48 2403:b840:2::/48 maxlen: 48 2403:b840:3::/48 maxlen: 48 2403:b840:4::/48 maxlen: 48 2403:b840:5::/48 maxlen: 48 2403:b840:6::/48 maxlen: 48 2403:b840:7::/48 maxlen: 48 2403:b840:8::/48 maxlen: 48 2403:b840:9::/48 maxlen: 48 2403:b840:a::/48 maxlen: 48 2403:b840:b::/48 maxlen: 48 2403:b840:c::/48 maxlen: 48 2403:b840:d::/48 maxlen: 48 2403:b840:e::/48 maxlen: 48 2403:b840:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3069 (0xbfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C21E/serialNumber=8BE3874546E90BA83237179EE8932013B2D9F840 Validity Not Before: Nov 14 18:37:19 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6736435f-d8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:4d:e3:28:54:dc:49:5d:70:d6:c4:ea:a2: b1:a5:54:c3:5a:b6:44:95:c8:b7:ce:94:e7:77:75: 63:a4:5e:94:41:5c:8b:7f:40:8c:96:de:13:84:14: 75:1f:be:d6:97:3e:55:55:96:43:64:3e:fb:ff:73: 6d:52:58:56:c6:cb:7f:0a:cc:95:8d:5c:c3:ce:41: 6d:c2:3e:68:9b:08:ca:ad:1f:89:ff:b3:fd:29:71: fc:d1:e3:e8:b6:db:e4:9a:a7:7e:15:19:d5:73:6b: 78:c9:4f:e0:78:76:0e:29:30:5c:07:5f:cd:c8:ca: f0:4a:1b:ab:02:6e:46:e2:c4:ad:12:39:47:8a:9b: b1:aa:52:9d:72:b5:fb:85:5b:ed:ea:9d:34:d7:40: 03:b4:53:d9:78:94:e1:5f:94:76:81:46:d1:17:cd: 72:df:04:46:55:ff:c5:08:bf:c4:cb:45:45:83:7f: 0e:2e:bf:a9:31:00:e9:ea:a8:d7:5d:75:80:96:9f: 56:17:7e:0a:63:db:c9:9b:11:65:0e:10:0f:fa:52: 0e:75:7a:e6:76:f3:2b:8e:fd:2b:7f:15:c3:8f:58: f6:7a:bf:80:93:b5:ee:ee:94:46:35:d9:17:b0:3c: 47:f9:07:f7:c8:16:fc:77:ae:5d:26:51:2d:24:4e: 3b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E6:58:C3:53:8E:37:B3:5C:C1:20:9C:67:09:37:CA:F4:CF:83:E4 X509v3 Authority Key Identifier: keyid:8B:E3:87:45:46:E9:0B:A8:32:37:17:9E:E8:93:20:13:B2:D9:F8:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/i-OHRUbpC6gyNxee6JMgE7LZ-EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-OHRUbpC6gyNxee6JMgE7LZ-EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C21E/60C181540B8911EA8E5AB75FC4F9AE02/FD1CA67AAD5511EDBA936539C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.112.0/23 IPv6: 2403:b840::/32 Signature Algorithm: sha256WithRSAEncryption 4d:1a:e9:93:1f:d7:35:b7:a1:5c:81:76:09:51:fb:07:0e:2d: 39:c8:97:d9:ef:b6:5f:78:68:25:ce:88:0c:d3:c4:7b:f0:94: 70:95:db:0a:0c:5a:1a:29:89:6f:bf:df:f0:4b:df:e9:2f:f1: 08:4d:b1:99:ea:dd:8a:83:e1:e2:72:67:26:c4:c4:98:b2:40: 46:fb:94:c6:3d:12:89:5e:d9:8b:08:cd:94:f3:0d:4c:4d:5d: 9c:2e:d0:87:0e:9e:0d:a3:52:fb:aa:1c:a8:19:ec:20:ee:4d: 35:52:60:93:d0:91:19:bb:41:50:c5:66:70:cc:fc:29:27:08: a0:c4:4d:86:fb:14:82:3a:6c:7e:9d:4b:db:cf:e7:82:2e:97: b8:4d:11:99:0d:f5:14:67:83:51:35:66:f1:5a:71:f1:0d:32: 97:50:f3:6d:99:33:5d:30:80:89:93:8a:1e:a5:13:22:d8:28: e4:b6:f3:42:45:74:24:54:a6:ec:5e:1d:6d:98:b7:e7:23:b0: f3:41:75:31:7c:36:de:98:2d:7e:f0:84:23:56:95:35:7f:fa: c7:5b:d8:ff:2c:e2:d1:29:ff:05:24:22:34:33:64:c9:ea:fa: 6e:7c:1d:58:91:42:a0:28:26:22:24:51:5c:21:d2:bf:0f:8e: 6b:0e:5f:57 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyMUUxMTAvBgNVBAUTKDhCRTM4NzQ1NDZFOTBCQTgzMjM3MTc5RUU4OTMyMDEz QjJEOUY4NDAwHhcNMjQxMTE0MTgzNzE5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NDM1Zi1kOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwtN4yhU3EldcNbE6qKxpVTDWrZElci3zpTnd3VjpF6UQVyLf0CMlt4ThBR1 H77Wlz5VVZZDZD77/3NtUlhWxst/CsyVjVzDzkFtwj5omwjKrR+J/7P9KXH80ePo ttvkmqd+FRnVc2t4yU/geHYOKTBcB1/NyMrwShurAm5G4sStEjlHipuxqlKdcrX7 hVvt6p0010ADtFPZeJThX5R2gUbRF81y3wRGVf/FCL/Ey0VFg38OLr+pMQDp6qjX XXWAlp9WF34KY9vJmxFlDhAP+lIOdXrmdvMrjv0rfxXDj1j2er+Ak7Xu7pRGNdkX sDxH+Qf3yBb8d65dJlEtJE47CQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB/mWMNT jjezXMEgnGcJN8r0z4PkMB8GA1UdIwQYMBaAFIvjh0VG6QuoMjcXnuiTIBOy2fhA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzIxRS82MEMxODE1NDBC ODkxMUVBOEU1QUI3NUZDNEY5QUUwMi9pLU9IUlVicEM2Z3lOeGVlNkpNZ0U3TFot RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktT0hSVWJwQzZneU54ZWU2Sk1nRTdMWi1FQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyMUUvNjBDMTgxNTQwQjg5MTFFQThFNUFCNzVGQzRGOUFFMDIvRkQxQ0E2N0FB RDU1MTFFREJBOTM2NTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFngnAwDQQCAAIwBwMFACQDuEAwDQYJKoZIhvcNAQELBQAD ggEBAE0a6ZMf1zW3oVyBdglR+wcOLTnIl9nvtl94aCXOiAzTxHvwlHCV2woMWhop iW+/3/BL3+kv8QhNsZnq3YqD4eJyZybExJiyQEb7lMY9Eole2YsIzZTzDUxNXZwu 0IcOng2jUvuqHKgZ7CDuTTVSYJPQkRm7QVDFZnDM/CknCKDETYb7FII6bH6dS9vP 54Iul7hNEZkN9RRng1E1ZvFacfENMpdQ822ZM10wgImTih6lEyLYKOS280JFdCRU puxeHW2Yt+cjsPNBdTF8Nt6YLX7whCNWlTV/+sdb2P8s4tEp/wUkIjQzZMnq+m58 HViRQqAoJiIkUVwh0r8PjmsOX1c= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org